The Samba-Bugzilla – Attachment 7173 Details for
Bug 8654
link-by-hash: Fix (non-exploitable) buffer overflow
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
Improve generation of hash file name
0001-Improve-generation-of-hash-file-name.patch (text/plain), 1.50 KB, created by
Chris Dunlop
on 2011-12-13 00:02:55 UTC
(
hide
)
Description:
Improve generation of hash file name
Filename:
MIME Type:
Creator:
Chris Dunlop
Created:
2011-12-13 00:02:55 UTC
Size:
1.50 KB
patch
obsolete
>From 02a941c2a2969c830a550aa92ca7971e49f47836 Mon Sep 17 00:00:00 2001 >From: Chris Dunlop <chris@onthe.net.au> >Date: Tue, 13 Dec 2011 10:57:21 +1100 >Subject: [PATCH] Improve generation of hash file name > >Use the calculated checksum_len rather than assuming 16 bytes. > >Use sprintf() rather than hand-rolled binary-to-text. This is not in a >critical performance path. > >Signed-off-by: Chris Dunlop <chris@onthe.net.au> >--- > hashlink.c | 20 ++++++++------------ > 1 files changed, 8 insertions(+), 12 deletions(-) > >diff --git a/hashlink.c b/hashlink.c >index 12cc39b..b123697 100644 >--- a/hashlink.c >+++ b/hashlink.c >@@ -26,22 +26,18 @@ extern char *link_by_hash_dir; > > char *make_hash_name(struct file_struct *file) > { >- char hash[(MAX_DIGEST_LEN * 2) + 2], *dst; >- uchar c, *src = (uchar*)F_SUM(file); >+ char hash[(MAX_DIGEST_LEN * 2) + 2], *dst = hash; >+ uchar *src = (uchar*)F_SUM(file); > int i; > >- for (dst = hash, i = 0; i < 4; i++, src++) { >- c = *src >> 4; >- *(dst++) = (c >= 10) ? (c - 10 + 'a') : (c + '0'); >- c = *src & 0x0f; >- *(dst++) = (c >= 10) ? (c - 10 + 'a') : (c + '0'); >+ assert(checksum_len < sizeof(hash)); >+ >+ for (i = 0; i < 1; i++) { >+ dst += sprintf(dst, "%02x", (int)CVAL(src, i)); > } > *dst++ = '/'; >- for (i = 0; i < 12; i++, src++) { >- c = *src >> 4; >- *(dst++) = (c >= 10) ? (c - 10 + 'a') : (c + '0'); >- c = *src & 0x0f; >- *(dst++) = (c >= 10) ? (c - 10 + 'a') : (c + '0'); >+ for ( ; i < checksum_len; i++) { >+ dst += sprintf(dst, "%02x", (int)CVAL(src, i)); > } > *dst = 0; > >-- >1.7.0.4 >
You cannot view the attachment while viewing its details because your browser does not support IFRAMEs.
View the attachment on a separate page
.
View Attachment As Raw
Actions:
View
Attachments on
bug 8654
:
7167
|
7168
|
7169
|
7170
|
7173
|
7174
|
7175
|
7176
|
7177
|
7202